Welcome to BearlyChilly! 馃憢
This is where we share our notes, articles, book reviews, and anything else that might be on our mind. Feel free to look around and stay a while! 馃檪
How to Work with Splunk Cloud ACS
Splunk Admin Config Service (ACS) API is a super powerful tool that allows you to manage your Splunk Cloud instance programmatically. In this post, I鈥檒l showcase some use cases for Splunk Cloud鈥檚 ACS API as well as provide some real-world examples.
Bearlychilly - Detecting Typosquatting with Splunk and the URL Toolbox App
Splunk users can apply the ut_levenshtein macro from the URL Toolbox app to compare domain names against a reference domain, enabling the detection of potential typosquatting.
How to Delete Old Logs Automatically When Using Syslog-NG
Let鈥檚 take a look at how to automatically delete old logs when using Syslog-NG. This doesn鈥檛 just apply to Syslog-NG, but it鈥檚 a common use case.
How to Install Syslog-NG on Linux - Ubuntu and Debian
In this guide, we鈥檒l walk you through the process of installing Syslog-NG on your Ubuntu or any other Debian-based Linux distribution. Syslog-NG is a powerful logging and event management tool used widely in cybersecurity and system administration. Follow these steps to get it up and running on your system.
Finding and Replacing Encrypted Secrets in Splunk Configurations
Have you ever needed to locate and replace encrypted secrets in your Splunk configurations? It鈥檚 a tricky task that requires careful handling. In this article, we鈥檒l guide you through the process.